When it comes to online dating scams, we all like to believe we learn from our own, and others, experiences. But according to new statistics on Romancescams.org, a website dedicated to fighting online romance scams, the average loss per person involved in a romance scam has climbed to a staggering $11,500. That’s up from a 2007 report where the advocacy group cited the average loss per victim was $7,900.

According to the article, “Website offers forum on avoiding romance scams,” fraudsters continue to successfully scam unsuspecting lonely hearts by using stolen credit cards to join online dating sites and set up fake profiles. From there, they quickly lure their victims off the dating sites and onto more personal lines of communications such as instant messaging and email before romance sites can discover the stolen credit card and pull their fake profiles. (more…)

The security strategy of “defense-in-depth” allows a system or an organization to prevent an attack by coordinating complementary defense techniques, taking advantage of the strengths of each one while relying on the combination to shore up weaknesses in the others.  The end result is a more complex and nuanced system that is resilient to a much greater number of attacks.

In a similar vein, we can see that any single device recognition strategy on the Web is going to run into some serious limitations, mostly related to the quality and the variety of the data that can be collected from a browser.  There are a number of sources of data that we can use to construct a view of a device on the Web, but most of them can be manipulated, and all of them have problems with uniqueness.  How to build a system that is resilient to so much data uncertainty?  Yeah, I know you’re already a step ahead of me – we design in depth. (more…)

It’s been said that the best offense is a good defense. But how do you defend against something that’s always changing? That’s an important question for IT security professionals who know that it’s only a matter of time before cyber criminals find ways to take advantage of the inherent weaknesses in even the best technologies.

The harsh reality is that today’s cyber criminals are so tech savvy and innovative that staying one step ahead of them isn’t always possible. That’s why, when it comes to network security, a good defense should be made up of several different layers. That way, even if a hacker is able to exploit vulnerability in one layer of the system, he may be stopped or slowed down by another. This strategy, known as defense in depth, essentially allows organizations to protect the integrity of their systems by slowing hackers down and buying security professionals the time they need to respond to a security breach once it has occurred. This mitigates the damage that malicious hackers can do, even if they are able to make it past initial barriers. (more…)